"Sulesky, Adam" wrote:
> Hello,
>
> We're running JServ 1.0b4 along with the Apache web server. I'm
> attempting to get the zones I've created to be controlled by basic
> authentication implemented by the Apache. A .htaccess file and
> associated user file have been created and were initially placed at the
> server document root. This has successfully restricted access to the
> web pages not in protecting the servlet directories. If a user goes to
> an HTML directory initially then the they are prompted for a
> username/password. If they go directly to a servlet there is no
> prompting. How do I get Apache to recognize that it should access
> control the servlet zones? I've tried protecting it explicitly with
> <Directory> information in the access.conf but that hasn't worked.
> Help! Our servlets recognize that the user hasn't logged in
> (getUserName() returns null) but has no way of forcing the Apache server
> to login the user.
>
> Thanks for any help/insight and I apologize if the question has been
> asked previously but I haven't been able to find any references to it so
> far.
>
> Thanks,
> adam
>
Apache does not support .htaccess files to protect servlets. This is because
when you access servlets, there is no "real" directory for you to put your
.htaccess files into.
You can use <LOCATION> directives in the httpd.conf file to protect access to
servlets based on their URI, instead of their actual directory.
Craig McClanahan
-- --------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
READ THE FAQ!!!! <http://java.apache.org/faq/>
Archives and Other: <http://java.apache.org/main/mail.html/>
Problems?: [EMAIL PROTECTED]
